Data protection declaration



    Unless stated otherwise below, the provision of your personal data is neither legally nor contractually obligatory, nor required for conclusion of a contract. You are not obliged to provide your data. Not providing it will have no consequences. This only applies as long as the processing procedures below do not state otherwise.
    “Personal data” is any information relating to an identified or identifiable natural person.

    Server log files


    You can use our websites without submitting personal data. 

    Every time our website is accessed, user data is transferred to us or our web hosts/IT service providers by your internet browser and stored in server log files. This stored data includes for example the name of the site called up, date and time of the request, the IP address, amount of data transferred and the provider making the request. The processing is carried out on the basis of Article 6(1) f) GDPR due to our legitimate interests in ensuring the smooth operation of our website as well as improving our services.
     

    Analysis      Advertising tracking      


    Use of Meta Pixel


    We use Meta Pixel from Meta Platforms Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; "Meta") on our website.
    Meta and we are jointly responsible for the collection of your data and the transfer of this data to Meta when the service is integrated. The basis for this is an agreement between us and Meta on the joint processing of personal data, in which the respective responsibilities are defined. The agreement is available at https://de-de.facebook.com/legal/terms/businesstools. According to this agreement, we are responsible in particular for the fulfilment of the information obligations in accordance with Arts 13 and 14 GDPR, for compliance with the security requirements of Art. 32 GDPR with regard to the correct technical implementation and configuration of the service, and for compliance with the obligations in accordance with Arts 33 and 34 GDPR, insofar as a violation of the protection of personal data affects our obligations under the agreement on joint processing. Meta is responsible for enabling the rights of the data subject in accordance with Arts 15-20 GDPR, for complying with the security requirements of Art. 32 GDPR with regard to the security of the service, and for complying with the obligations of Arts 33 and 34 GDPR, insofar as a breach of personal data protection concerns Meta's obligations under the joint processing agreement.
    The application serves to address the visitor to the website with interest-related advertising on the social networks Facebook and Instagram. We have implemented Meta’s remarketing tag on our website for this purpose. This tag sets up a direct connection to Meta’s servers when you visit our website. This informs the Meta server which of our web pages you have visited. Meta assigns this information to your personal Facebook and/or Instagram user account. When you visit the social networks Facebook or Instagram, you will then be shown personalised, interest-related ads.
    The application also serves the purpose of creating conversion statistics. This allows us to find out the total number of users who have clicked our adverts and were forwarded to a page equipped with a conversion tracking tag as well as what actions are taken after being redirected to this website. However, they do not receive any information which could be used to personally identify users.
    Your data may be transmitted to the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Meta has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
    The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
    For this purpose, you can deactivate the remarketing function “Custom Audiences”. You can find more detailed information on Meta’s collection and use of data and your associated rights and options for protecting your privacy in Meta’s privacy policy: https://www.facebook.com/about/privacy/.

    Use of Meta Custom Audiences


    We use Meta Custom Audiences. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

    When you visit or use our websites and apps, access our free or paid services, submit data to us, or interact with our company’s Facebook or Instagram content, we collect your personal data. If you grant us consent to use Meta Custom Audiences, we will transmit this data to Meta, which can then serve you relevant advertisements. Additionally, your data can be used to define target groups (Lookalike Audiences).

    Meta processes this data as our data processor. Details can be found in Meta’s terms of use: https://www.facebook.com/legal/terms/customaudience.

    The use of this service is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. You can withdraw your consent at any time.

    The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.facebook.com/legal/terms/customaudience and https://www.facebook.com/legal/terms/dataprocessing.

    The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards in data processing in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. For more information, you can visit the provider’s link here: https://www.dataprivacyframework.gov/participant/4452.

    Use of Google Ads conversion tracking


    Our website uses the online marketing program "Google Ads", including conversion tracking (evaluation of user actions). Google conversion tracking is a service operated by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland; "Google").
    If you click on adverts placed by Google, a cookie is placed on your computer for conversion tracking. These cookies have limited validity, do not contain any personal data and thus cannot be used for personal identification. If you visit certain pages on our website and the cookie has not yet expired, we and Google can recognise that you have clicked on the advert and were forwarded to this page. Every Google Ads customer receives a different cookie. It is therefore not possible to track cookies relating to the websites of Ads customers.
    The information collected using the conversion cookie serves the purpose of producing conversion statistics. This allows us to find out the total number of users who have clicked on our adverts and were forwarded to a page equipped with a conversion tracking tag. However, they do not receive any information with which could be used to personally identify users.
    Your data may be transmitted to Google LLC servers in the USA. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Google has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.
    The use of cookies or comparable technologies is carried out with your consent on the basis of Art. 25 para. 1 p. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. You can withdraw your consent at any time without affecting the legality of the processing carried out with your consent up to the withdrawal.
    You will find more information as well as Google’s data privacy policy at: https://www.google.com/policies/privacy/

    The website operator uses Google Ads. Google Ads is an online advertising program by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

    Google Ads allows us to display ads in the Google search engine or on third-party websites when users enter specific search terms in Google (keyword targeting). Additionally, targeted ads can be displayed based on the user data available at Google (e.g., location data and interests) (audience targeting). As the website operator, we can quantitatively analyze this data, for example, by examining which search terms triggered the display of our ads and how many ads resulted in corresponding clicks.

    The use of this service is based on your consent according to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. The consent can be withdrawn at any time.

    The data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.

    The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards in data processing in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. For more information, you can visit the provider's link here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

    Google Ads Remarketing


    This website uses the features of Google Ads Remarketing. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

    With Google Ads Remarketing, we can assign individuals who interact with our online offerings to specific target groups in order to display interest-based advertising to them in the Google ad network (remarketing or retargeting).

    Furthermore, the advertising target groups created with Google Ads Remarketing can be linked to Google's cross-device features. This way, interest-based, personalized advertising messages that were adjusted to you based on your previous usage and browsing behavior on one device (e.g., mobile phone) can also be shown on another of your devices (e.g., tablet or PC).

    If you have a Google account, you can opt out of personalized advertising using the following link: https://www.google.com/settings/ads/onweb/

    The use of this service is based on your consent pursuant to Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG. The consent can be withdrawn at any time.

    For more information and the privacy policy, please refer to Google's privacy statement at: https://policies.google.com/technologies/ads?hl=de

    The company is certified under the "EU-US Data Privacy Framework" (DPF). The DPF is an agreement between the European Union and the USA that aims to ensure compliance with European data protection standards in data processing in the USA. Any company certified under the DPF is committed to adhering to these data protection standards. For more information, you can visit the provider's link here: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active


    Application process via d.vinci


    For the management of applications, we use the applicant management system of d.vinci HR-Systems GmbH, Nagelsweg 37-39, 20097 Hamburg. The application data you provide (e.g. master data, contact details, documents such as CV, certificates, qualifications) is processed solely for the purpose of handling your application.

    Legal basis

    The legal basis is Art. 6 (1) lit. b GDPR (pre-contractual measures), if applicable Art. 6 (1) lit. a GDPR (consent, e.g. inclusion in a talent pool) as well as Art. 6 (1) lit. f GDPR (legitimate interests, such as the defense against legal claims).

    Retention period

    As a rule, the data will be deleted no later than 6 months after completion of the application process, unless statutory retention periods apply or consent to longer storage (e.g. in the talent pool, max. 2 years) has been given.

    Order processing & server location

    d.vinci acts as a processor on our behalf and ensures GDPR-compliant processing in accordance with Art. 28 GDPR. Processing takes place exclusively on servers in Germany.

    Your rights

    You have the following rights towards us:

    • Access
    • Rectification
    • Erasure
    • Restriction of processing
    • Objection
    • Data portability
    • Withdrawal of consent

    Contact



    Responsible person/Data protection officer


    Contact us at any time. The person responsible for data processing is: BBG Fashion GmbH, Jöbkesweg 19-23, 48599 Gronau Deutschland, +49 800/4448765, onlineshop@monari.com


    You can contact our data protection officers directly at: datenschutz@sila-consulting.de


    SILA Consulting GmbH
    Weseler Straße 9
    46325 Borken

    Proactive contact of the customer by e-mail


    If you make contact with us proactively via email, we shall collect your personal data (name, email address, message text) only to the extent provided by you. The purpose of the data processing is to handle and respond to your contact request.

    If the initial contact serves to implement pre-contractual measures (e.g. consultation in the case of purchase interest, order creation) or concerns an agreement already concluded between you and us, this data processing takes place on the basis of Article 6(1)(b) GDPR.

    If the initial contact occurs for other reasons, this data processing takes place on the basis of Article 6(1)(f) GDPR for the purposes of our overriding, legitimate interest in handling and responding to your request. In this case, on grounds relating to your particular situation, you have the right to object at any time to this processing of personal data concerning you and carried out on the basis of Article 6(1)(f) GDPR.

    We will only use your email address to process your request. Your data will subsequently be deleted in compliance with statutory retention periods, unless you have agreed to further processing and use.
     


    Rights of persons affected and storage duration


    Duration of Storage


    The data will be stored under consideration of legal retention periods and then deleted after expiration of the period, unless you have not agreed to further processing and use.

    Rights of the affected person


    If the legal requirements are fulfilled, you have the following rights according to art. 15 to 20 GDPR: Right to information, correction, deletion, restriction of processing, data portability. You also have a right of objection against processing based on art. 6 (1) GDPR, and to processing for the purposes of direct marketing, according to art. 21 (1) GDPR.
     

    Right to complain to the regulatory authority


    You have the right to complain to the regulatory authority according to art. 77 GDPR if you believe that your data is not being processed legally.
     

    Right to object


    If the data processing outlined here is based on our legitimate interests in accordance with Article 6(1)f) GDPR, you have the right for reasons arising from your particular situation to object at any time to the processing of your data with future effect.

    If the objection is successful, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests or rights and freedoms, or the processing is intended for the assertion, exercise or defence of legal claims.